Description

The module fails to sanitize user input, making it vulnerable to cross site scripting (XSS) attacks. This vulnerability is somewhat limited by the fact that an attacker would need an account with the permissions to "create application" on the site.